TeslaCrypt C2 :: runescape-autominer.info

Host Information

TeslaCrypt C2:runescape-autominer.info
Threat:C2
Malware:TeslaCrypt
URL:http://runescape-autominer.info/phpinc.php
Host Status:offline
Blacklist check:Spamhaus DBL:Not Listed
 SURBL:Not Listed
Domain Registar:eNom, Inc.
Firstseen (UTC):2016-04-27 16:51:18
Lastseen (UTC):2016-06-28 18:13:43

Associated IP addresses

The table below shows all ip addresses (e.g. A records) associated with this TeslaCrypt C2. In case the host is a domain name, the table also shows a history of previous A records if there are any.

Active (?This row indicates whether the domain name's A record is currently pointing to an IP address or whether the record is historic (e.g. because the A record has been moved to a different IP address).

yes = Active A record
no = Historical record
)
Firstseen (UTC)Lastseen (UTC)IP addressHostnameSBLAS numberAS nameCountry
yes2016-04-28 04:54:202016-04-30 09:53:47192.185.46.61Not listedAS20013CYRUSONE - CyrusOne LLC, US- United States (US)

# IPs found: 1 (max. 25)

Referencing malware samples

Latest 100 malware binaries referencing this TeslaCrypt C2:

Firstseen (UTC)MD5 hashFilesizeVTTeslaCrypt C2 URL
2016-06-28 17:32:53aa6192caec3e025bb0943efa4ef28344430'080 bytesVirustotal results 35/55 (63.64%) http://runescape-autominer.info/phpinc.php
2016-05-25 20:38:09a28437b921610199fd8aa95c473e0d59434'176 bytesVirustotal results 41/57 (71.93%) http://runescape-autominer.info/phpinc.php
2016-05-08 11:17:556834dd22796b7600deaf0b5d1927ae92475'136 bytesVirustotal results 36/57 (63.16%) http://runescape-autominer.info/phpinc.php
2016-05-08 11:17:50df2c0333c22768322ced8e55532dc8e8475'136 bytesVirustotal results 26/57 (45.61%) http://runescape-autominer.info/phpinc.php
2016-05-08 11:17:43fc2e7389ce9140a4d096858c23e854e6479'232 bytesVirustotal results 35/57 (61.40%) http://runescape-autominer.info/phpinc.php
2016-05-08 11:17:32f417f72aa747d2b41a6c9467a027786e475'136 bytesVirustotal results 34/57 (59.65%) http://runescape-autominer.info/phpinc.php
2016-05-08 11:17:077a6029fb9d2580edbb6007b098b519ec475'136 bytesVirustotal results 33/57 (57.89%) http://runescape-autominer.info/phpinc.php
2016-05-01 19:20:17c1de2311ae763f305144be54402a13ed475'136 bytesVirustotal results 27/56 (48.21%) http://runescape-autominer.info/phpinc.php
2016-05-01 18:32:07725009eaa8a92d1d0cc46d70154939a9475'136 bytesVirustotal results 28/56 (50.00%) http://runescape-autominer.info/phpinc.php
2016-05-01 17:51:342c5adf1b60ac6a0ed1c8872012ce0a82442'368 bytesVirustotal results 35/55 (63.64%) http://runescape-autominer.info/phpinc.php
2016-04-30 19:55:2564bfb28973ef71284140bf9a871f732d430'080 bytesVirustotal results 25/57 (43.86%) http://runescape-autominer.info/phpinc.php
2016-04-30 19:48:345076b9ba5e068d07fbfd59282836ac61438'272 bytesVirustotal results 36/57 (63.16%) http://runescape-autominer.info/phpinc.php
2016-04-30 19:47:244d20cc6b4021d176e806e96952ce3019442'368 bytesVirustotal results 34/57 (59.65%) http://runescape-autominer.info/phpinc.php
2016-04-30 19:15:01d54fca0defb36c447af3b6961711dda3438'272 bytesVirustotal results 40/56 (71.43%) http://runescape-autominer.info/phpinc.php
2016-04-30 19:10:03517732067df17a66f8dc2fbee8ac97c2434'176 bytesVirustotal results 23/57 (40.35%) http://runescape-autominer.info/phpinc.php
2016-04-28 19:25:458949c5e942bf4c048eb8e00963bf5525479'232 bytesVirustotal results 26/57 (45.61%) http://runescape-autominer.info/phpinc.php
2016-04-28 19:25:35aa0ac61c36b7cff9cd85a9a6d792c45b475'136 bytesVirustotal results 22/57 (38.60%) http://runescape-autominer.info/phpinc.php
2016-04-28 19:24:28c6b73f8ce2f66b0a7c063c2347d732b0475'136 bytesVirustotal results 22/57 (38.60%) http://runescape-autominer.info/phpinc.php
2016-04-28 19:23:176a314c7a8f70955e59aa5989587e245a536'576 bytesVirustotal results 15/56 (26.79%) http://runescape-autominer.info/phpinc.php
2016-04-28 19:19:45c589dca14b4333fce03b1aeb57a32b85430'080 bytesVirustotal results 23/56 (41.07%) http://runescape-autominer.info/phpinc.php
2016-04-28 19:18:215ac00faf34e19005d2451c4ebf01a7e8442'368 bytesVirustotal results 21/57 (36.84%) http://runescape-autominer.info/phpinc.php
2016-04-28 19:17:48508d11a0f364ef375a03d3b7fbebdf11430'080 bytesVirustotal results 22/57 (38.60%) http://runescape-autominer.info/phpinc.php
2016-04-28 19:15:186f58b32e2fce9e58169871880ad9fbf5434'176 bytesVirustotal results 24/57 (42.11%) http://runescape-autominer.info/phpinc.php
2016-04-27 17:38:36fb6ac8d602af2363ab5c5e48525838b1430'080 bytesVirustotal results 26/57 (45.61%) http://runescape-autominer.info/phpinc.php
2016-04-27 17:32:05e6a9e9e261b7bfa13b9f51b7cc466360434'176 bytesVirustotal results 26/57 (45.61%) http://runescape-autominer.info/phpinc.php
2016-04-27 17:23:22cb9cfe955cfe5fa1f0c7bb0d6624e41b430'080 bytesVirustotal results 24/57 (42.11%) http://runescape-autominer.info/phpinc.php
2016-04-27 17:11:53b4e7fe1420c1d22853a70813d7f3cbdf434'176 bytesVirustotal results 28/57 (49.12%) http://runescape-autominer.info/phpinc.php
2016-04-27 16:59:158cd8cf63f6776b67d957d163fa042f2b434'176 bytesVirustotal results 27/56 (48.21%) http://runescape-autominer.info/phpinc.php
2016-04-27 16:59:078c789cb4e1de85176d8883314e0be9f1434'176 bytesVirustotal results 24/57 (42.11%) http://runescape-autominer.info/phpinc.php
2016-04-27 16:57:258737dac549e33c49facd8d000995bf97434'176 bytesVirustotal results 26/57 (45.61%) http://runescape-autominer.info/phpinc.php
2016-04-27 16:57:23871e464c7f9f6f8c18e5c948d8a7bd09434'176 bytesVirustotal results 24/57 (42.11%) http://runescape-autominer.info/phpinc.php
2016-04-27 16:39:59518e931a049d7d64c381dbebc96cf19d434'176 bytesVirustotal results 23/57 (40.35%) http://runescape-autominer.info/phpinc.php
2016-04-27 16:28:152d47913035204c11128d944d78be8eb7430'080 bytesVirustotal results 4/56 (7.14%) http://runescape-autominer.info/phpinc.php
2016-04-27 16:21:26167142261e4d18f68ba6071d5aa4fb68434'176 bytesVirustotal results 3/56 (5.36%) http://runescape-autominer.info/phpinc.php
2016-04-27 16:06:28a100eff9dae36b7b3bae3ed072639d99388'096 bytesVirustotal results 16/57 (28.07%) http://runescape-autominer.info/phpinc.php
2016-04-27 16:02:54a97f4ba951113e2cff2aae378f96a309422'400 bytesVirustotal results 33/57 (57.89%) http://runescape-autominer.info/phpinc.php
2016-04-27 15:58:1608a01b8e22656b17e7effcd8ee171e5c479'232 bytesVirustotal results 26/57 (45.61%) http://runescape-autominer.info/phpinc.php
2016-04-27 15:48:588758b085c23ac1dbe45c09fa2417a66a430'080 bytesVirustotal results 11/56 (19.64%) http://runescape-autominer.info/phpinc.php

Referencing malware samples: 38